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Email and security: How to make secure email easier to use 
Simson L. Garfinkel, David Margrave, Jeffrey I. Schiller, Erik Nordlander, Robert C. Miller 
April 2005 Proceedings of the SIGCHI conference on Human factors in computing 

systems CHI '05 
Publisher: ACM Press 

Additional Information: full citation , abstract , references , citin gs, index 
terms 



Full text available:^ pdf(41 9. 10 KB) 



Cryptographically protected email has a justly deserved reputation of being- difficult to- 
use. Based on an analysis of the PEM, PGP and S/MIME standards and a survey of 470 
merchants who sell products on Amazon.com, we argue that the vast majority of Internet 
users can start enjoying digitally signed email today. We present suggestions for the use 
of digitally signed mail in e-commerce and simple modifications to webmail systems that 
would significantly increase integrity, privacy and authorship ... 



Keywords: e-commerce, user interaction design, user studies 



2 Secure external references in multimedia email messa ges 
Burkhard Wiegel 

January 1996 Proceedings of the 3rd ACM conference on Computer and 

communications security CCS '96 
Publisher: ACM Press 

Full text available: ^ pdf ( 1.27 MB) Additional Information: full citation , references , index terms 



3 Certified mail: the next challenge for secure messa ging 
Rolf Oppliger 

August 2004 Communications of the ACM, volume 47 issue 8 
Publisher: ACM Press 

Full text available: fR pdf( 88.44 KB) AJJ . A . , ' . « t . 

\^^^\ (25T\~KB) Add,t,onal lnformat,on: full citation , abstract , references , index terms 

The lack of evidence for message receipt is a missing piece of the infrastructure required 
for the more professional use of email. 



Security architecture: BPEL orchestration of secure webmail 



http://portal.acm.org/results.cfm?coll=ACM&dl=ACM&CFID=45794993&... 12/5/2007 



Results (page 1): secure email message 



Page 2 of 6 



Saket Kaushik, Duminda Wijesekera, Paul Ammann 

November 2006 Proceedings of the 3rd ACM workshop on Secure web services SWS 
06 

Publisher: ACM Press 

Full text available: Q pdf(422.08 KB) Additional Information: full citation , abstract , references , index terms 

WebMail proposes to migrate existing SMTP-based mail systems to Web-Services. We 
show how a verifiably-correct, generic mail service that enables extensions of SMTP-based 
standard mail use cases that avoids known misuse cases can be specified using WSDL and 
orchestrated using BPEL. 

Keywords: BPEL, SMTP misuse cases, SMTP use cases, WSEmail, verification, webmail 

5 Johnny 2: a user test of key continuity management with S/MIME and Outlook | 
^ Ex press 

v Simson L. Garfinkel, Robert C. Miller 

July 2005 Proceedings of the 2005 symposium on Usable privacy and security 
SOUPS 05 

Publisher: ACM Press 

Full text available: « pdf (665.63 KB ) Additional Information: full citation , abstract, references , citings, index 
^ terms 

Secure email has struggled with signifcant obstacles to adoption, among them the low 
usability of encryption software and the cost and overhead of obtaining public key 
certificates. Key continuity management (KCM) has been proposed as a way to lower 
these barriers to adoption, by making key generation, key management, and message 
signing_essenti.ally automatic. We present the first-user-study of KCM-secured email 7 
conducted on naive users who had no previous experience with secure email. Our ... 

Keywords: Usability, e-commerce, user interaction design, user studies 

6 Security for Web Applications and P2P: Certified email with a li g ht on-line trusted 
^ third party: design and implementation 

^ Martin Abadi, Neal Glew 

May 2002 Proceedings of the 11th international conference on World Wide Web 

WWW 02 
Publisher: ACM Press 

Full text available: ^g] pdf(189.19 KB) Additional Information: full citation , abstract , citings, index terms 

This paper presents a new protocol for certified email. The protocol aims to combine 
security, scalability, easy implementation, and viable deployment. The protocol relies on a 
light on-line trusted third party; it can be implemented without any special software for 
the receiver beyond a standard email reader and web browser, and does not require any 
public-key infrastructure. 

7 Enablin g email confidentiality through the use of o p portunistic encryption 
Simson L. Garfinkel 

May 2003 Proceedings of the 2003 annual national conference on Digital 
government research dg.o '03 

Publisher: Digital Government Research Center 

Full text available: |j^ pdf(51.35 KB) Additional Information: full citation , abstract , references 

Software for encrypting email messages has been widely available for more than 15 
years, but the email-using public has failed to adopt secure messaging. This failure can be 
explained through a combination of technical, community, and usability factors. This 
paper proposes a new approach to email security that employs opportunistic encryption 
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and a security proxy to facilitate the opportunistic exchange of keys and encryption of 
electronic mail. While it appears that this approach offers less se ... 

8 SOUPS du jour: Facemail: showin g faces of recipients to prevent misdirected email 
Eric Lieberman, Robert C. Miller 

July 2007 Proceedings of the 3rd symposium on Usable privacy and security SOUPS 
07 

Publisher: ACM Press 

Full text available: Qpdf ( 615.51 KB) Additional Information: full citation , abstract , references , index terms 

Users occasionally send email to the wrong recipients — clicking Reply To All instead of 
Reply, mistyping an email address, or guessing an email address and getting it wrong - 
and suffer violations of security or privacy as a result. Facemail is an extension to a 
webmail system that aims to alleviate this problem by automatically displaying pictures of 
the selected recipients in a peripheral display, while the user is composing an email 
message. We describe techniques for obtaining faces fro ... 

Keywords: email, errors, privacy, reply to all, security 



9 ( How) can mobile agents do secure electronic transactions on untrusted hosts? A 
<g> survey of the security issues and the current soluti o ns 

^ Joris Claessens, Bart Preneel, Joos Vandewalle 

February 2003 ACM Transactions on Internet Technology (TOIT), volume 3 issue l 
Publisher: ACM Press 

Full text available' fiD pdf(1 97 96 KB) Add ' t ' onal Information: full citation , abstract , references , citings, index 

- - ' ™ - - - -- - ----- - - terms " 

This article investigates if and how mobile agents can execute secure electronic 
transactions on untrusted hosts. An overview of the security issues of mobile agents is 
first given. The problem of untrusted (i.e., potentially malicious) hosts is one of these 
issues, and appears to be the most difficult to solve. The current approaches to counter 
this problem are evaluated, and their relevance for secure electronic transactions is 
discussed. In particular, a state-of-the-art survey of mobile agen ... 

Keywords: Mobile agent security, electronic transactions, malicious hosts 

10 Security in the wild: user strate g ies for mana ging s ecurity as an every day, p ractical 
problem 

Paul Dourish, E. Grinter, Jessica Delgado de la Flor, Melissa Joseph 
November 2004 Personal and Ubiquitous Computing, volume 8 issue 6 
Publisher: Springer-Verlag 

Full text available: ^ pdf(227.06 KB) Additional Information: full citation , abstract , citings, index terms , review 

Ubiquitous and mobile technologies create new challenges for system security. Effective 
security solutions depend not only on the mathematical and technical properties of those 
solutions, but also on people's ability to understand them and use them as part of their 
work. As a step towards solving this problem, we have been examining how people 
experience security as a facet of their daily life, and how they routinely answer the 
question, "is this system secure enough for what I ... 

11 Accountabilit y protocols: Formalized and verified 
Giampaolo Bella, Lawrence C. Paulson 

May 2006 ACM Transactions on Information and System Security (TISSEC), volume 9 

Issue 2 
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Publisher: ACM Press 

Full text available: ^pdf(433.82 KB) Additional Information: full citation , abstract , references , index terms 

Classical security protocols aim to achieve authentication and confidentiality under the 
assumption that the peers behave honestly. Some recent protocols are required to 
achieve their goals even if the peer misbehaves. Accountability is a protocol design 
strategy that may help. It delivers to peers sufficient evidence of each other's » 
participation in the protocol. Accountability underlies the nonrepudiation protocol of Zhou 
and Gollmann and the certified email protocol of Abadi et al. Thi ... 

Keywords: Isabelle, Nonrepudiation, certified email, inductive method, proof tools 



12 Privacy and authentication: An effective defense a g ainst email spam launderin g 
Mengjun Xie, Heng Yin, Haining Wang 

October 2006 Proceedings of the 13th ACM conference on Computer and 

communications security CCS v 06 
Publisher: ACM Press 

Full text available;^ pdf(362. 04 KB) Additional Information: full citation , abstract , references , index terms 

Laundering email spam through open-proxies or compromised PCs is a widely-used trick 
to conceal real spam sources and reduce spamming cost in underground email spam 
industry. Spammers have been plaguing the Internet by exploiting a large number of 
spam proxies. The facility of breaking spam laundering and deterring spamming activities 
close to their sources, which would greatly benefit not only email users but also victim 
ISPs, is in great demand but still missing. In this paper, we reveal one s ... 

Keywords:- SPRT, proxy, spam 



13 Managing user perceptions of email privacy 
Suzanne P. Weisband, Bruce A. Reinig 

December 1995 Communications of the ACM, volume 38 issue 12 
Publisher: ACM Press 

Full text available* Hi pdf(2 13 15 KB) Addjtional Information: full citation , abstract , references , citings , index 
, fey 1 terms 

Email users, expecting privacy, risk embarassment, lawsuits, and worse. 
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October 2004 Proceedings of the 2004 ACM workshop on Privacy in the electronic 
society WPES 04 

Publisher: ACM Press 

Full text available* 151 pdf(1 54 87 KB) Addit ' onal Information: full citation , abstract , references , citings , index 
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Quite often on the Internet, cryptography is used to protect private, personal 
communications. However, most commonly, systems such as PGP are used, which use 
long-lived encryption keys (subject to compromise) for confidentiality, and digital 
signatures (which provide strong, and in some jurisdictions, legal, proof of authorship) for 
authenticity. 

In this paper, we argue that most social communications online should have just the 
opposite of the above two properties; namely, they shoul ... 

Keywords: deniability, perfect forward secrecy, private communication 
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What should conscientious employees and their ethical employers expect? It's hard to 
say. 
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Shirley Gaw, Edward W. Felten, Patricia Fernandez-Kelly 

April 2006 Proceedings of the SIGCHI conference on Human Factors in computing 
systems CHI '06 

Publisher: ACM Press 

Full text available: * Qpdf(502.61 KB) Additional Information: full citation , abstract , references , index terms 

We consider the social context behind users' decisions about whether and when to encrypt 
email, interviewing a sample of users from an organization whose mission requires 
secrecy. Interview participants varied in their level of technical sophistication and in their 
involvement with secrets. We found that users saw universal, routine use of encryption as 
paranoid. Encryption flagged a message not only as. confidential but also as urgent, so 
users found the encryption of mundane messages annoying. ... 

Keywords: activism, encrypted e-mail, extended case method, security 
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We propose several highly-practical and optimized constructions for joint signature and 
encryption primitives often referred to as <i>signcryption</i>. All our signcryption 
schemes, built directly from trapdoor permutations such as RSA, share features such as 
simplicity, efficiency, generality, near-optimal exact security, flexible and ad-hoc key 
management, key reuse for sending/receiving data, optimally-low message expansion, 
"backward" use for plain signature/encryption, long messa ... 
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signcryption, universal padding schemes 
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Full text available: ^| pdf (205.07 KB) Additional Information: fu ll citation , ab stract , references , in dex terms 

Current email-control mechanisms, though highly effective, are pro-ne to dropping 
desirable messages. This can be attributed to their coarseness in filtering out undesirable 
messages from desirable ones. As a result policies to control undesirable messages are 
often overly permissive. To allow policies to be more restrictive, the transmission 
mechanism must be made aware of the ways to document a message so that it is 
acceptable downstream, thus giving the senders a chance of meeting those requi ... 

Keywords: constraint logic programming, email/spam control, policy advertisement, 
policy feedback 
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When using wireless networks, some chats, web searches, and other information are 
broadcast out onto the local network. Other users on the same network may intercept and 
read this information. Unfortunately, without detailed knowledge of underlying 
technologies, many users are unable to properly evaluate the risks involved in everyday 
communication tasks. This study aims to develop techniques for allowing users without 
technical backgrounds to form more accurate expectations of privacy. We have ... 

Keywords: electronic communication privacy, peripheral display, privacy, privacy 
enhancing technologies, wireless network 
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Patients' desire for online communication with their health care providers is likely to 
- — change-the course-of both telemedicine and e-health technologies. 

22 Dealin g with disruptions: Su p portin g trust buildin g in distributed g roups by 

appropriate security technology 
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November 2007 Proceedings of the 2007 international ACM conference on Conference 
on supporting group work GROUP '07 

Publisher: ACM 

Full text available: ^] pdf(289.84 KB) Additional Information: full citation , abstract , references , index terms 

In this paper, we discuss requirements for building trust in locally distributed groups 
whose members co-operate via shared workspace systems. We argue that appropriate 
security technology should be an intrinsic part of such systems and describe a conceptual 
model as well as a recent extension to an existing shared workspace system that provides 
the respective functionality based on PGP. 
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The focus of access control in client/server environments is on protecting sensitive server 
resources by determining whether or not a client is authorized to access those resources. 
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The set of resources is usually static, and an access control policy associated with each 
resource specifies who is authorized to access the resource. In this article, we turn the 
traditional client/server access control model on its head and address how to protect the 
sensitive content that clients disclose to and r ... 

Keywords: Trust negotiation, access control, authentication, credentials 



24 Key mana g ement: Hardware-rooted trust for secure key management and transient 
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Jeffrey S. Dwoskin, Ruby B. Lee 

October 2007 Proceedings of the 14th ACM conference on Computer and 
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Publisher: ACM 

Full text available: ^ pdf(520.62 KB) Additional Information: full citation , abstract , references , index terms 

We propose minimalist new hardware additions to a microprocessor chip that protect 
cryptographic keys in portable computing devices which are used in the field but owned 
by a central authority. Our authority-mode architecture has trust rooted in two critical 
secrets: a Device Root Key and a Storage Root Hash, initialized in the device by the 
trusted authority. Our architecture protects trusted software, bound to the device, which 
can use the root secrets to protect other sensitive info ... 

Keywords: emergency response, hardware policy enforcement, key management, secret 
protection (sp), secure processors, transient trust 
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Despite the use of state of the art methods to protect against malicious programs, they 
continue to threaten and damage computer systems around the world. In this paper we 
present MET, the Malicious Email Tracking system, designed to automatically report 
statistics on the flow behavior of malicious software delivered via email attachments both 
at a local and global level. MET can help reduce the spread of malicious software 
worldwide, especially self-replicating viruses, as well as provide furth ... 

Keywords: anti-virus, email attachment, email tracking, virus detection 
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This paper addresses the problem of analysing an information system for security flaws or 
vulnerabilities in a way that is analogous to the analysis of a safety-critical system. In 
particular, instead of adopting the approach that security is a property that must be 
proved to hold (fault avoidance), it shows how to analyse a system for possible security 
failures so that fault prevention, tolerance, recovery or even fault acceptance techniques 
can be chosen where appropriate. 
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society WPES '04 
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We define message privacy against a <i > profiling </i > adversary, whose goal is to classify 
a population of users into categories according to the messages they exchange. This 
adversary models the most common privacy threat against email communication. We 
propose a protocol that protects senders and receivers of email messages from profiling 
attacks. 
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Founded on the principle of easy information interchange the Internet is an inherently 
unsafe communication medium. Despite this inherent insecurity electronic mail continues 
to grow as a key communication technology. Individuals and businesses both large and 
small have come to rely on electronic mail. Fortunately technologies have evolved that 
address the lack of security in the base Internet electronic mail standards. Through the 
use of Public Key Infrastructure (PKI) technologies it is possib ... 
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exchange, microsoft outlook, public key infrastructure 



30 Inside risks: Risks in email securit y 
Albert Levi, Qetin Kaya Kog 

August 2001 Communications of the ACM, volume 44 issue 8 
Publisher: ACM Press 

Full text available: ffl pdf(49.07 KB) A _. -a ♦ 

FgTT\Z ' Additional Information: full citation , citings, index terms 
|<#] ntroi(7.oo KB) 



http://portal.acm. org/results.cfm?query=secure%20email%20message&qu... 12/5/2007 



Results (page 2): secure email message 



Page 4 of 6 



31 Communication privacy: Secure off-the-record messa g in g 
Mario Di Raimondo, Rosario Gennaro, Hugo Krawczyk 

November 2005 Proceedings of the 2005 ACM workshop on Privacy in the electronic 
society WPES '05 

Publisher: ACM Press 
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At the 2004 Workshop on Privacy in the Electronic Society (WPES), Borisov, Goldberg and 
Brewer, presented "Off the Record Messaging" (OTR), a protocol designed to add end-to- 
end security and privacy to Instant Messaging protocols. An open-source implementation 
of OTR is available and has achieved considerable success. In this paper we present a 
security analysis of OTR showing that, while the overall concept of the system is valid and 
attractive, the protocol suffers from security shortcomings du ... 

Keywords: authentication, deniability, instant messaging, perfect forward secrecy 
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The focus of access control in client/server environments is on protecting sensitive server 

resources by determining whether or not a client is^ authorized^ ^acc^s_those^resqurces._ 

The set of resources are usually static, and an access control policy associated with each 
resource specifies who is authorized to access the resource. In this paper, we turn the 
traditional client/server access control model on its head, and address how to protect the 
sensitive content that clients disclose to serve ... 

Keywords: access control, authentication, credentials, trust negotiation 
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Sometimes a "friendly" email message tempts recipients to reveal more online than they 
otherwise would, playing right into the sender's hand. 
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This paper presents a new simple schemes for verifiable encryption of digital signatures. 
We make use of a trusted third party (TTP) but in an optimistic sense, that is, the TTP 
takes part in the protocol only if one user cheats or simply crashes. Our schemes can be 
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used as primitives to build efficient fair exchange and certified e-mail protocols. 
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In 1998, Blaze, Bleumer, and Strauss (BBS) proposed an application called atomic proxy 
re-encryption, in which a semitrusted proxy converts a ciphertext for Alice into a 
ciphertext for Bob without seeing the underlying plaintext. We predict that fast and secure 
re-encryption will become increasingly popular as a method for managing encrypted file 
systems. Although efficiently computable, the wide-spread adoption of BBS re-encryption 
has been hindered by considerable security risks. ... 

Keywords: Proxy re-encryption, bilinear maps, double decryption, key translation 
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We present a new approach for fine-grained control over users' security privileges (fast 
revocation of credentials) centered around the concept of an on-line semi -trusted 
mediator (SEM). The use of a SEM in conjunction with a simple threshold variant of the 
RSA cryptosystem (mediated RSA) offers a number of practical advantages over current 
revocation techniques. The benefits include simplified validation of digital signatures, 
efficient certificate revocation for legacy systems and fast revocat ... 
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Phishing emails are semantic attacks that con people into divulging sensitive information 
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using techniques to make the user believe that information is being requested by a 
legitimate source. In order to develop tools that will be effective in combating these 
schemes, we first must know how and why people fall for them. This study reports 
preliminary analysis of interviews with 20 non-expert computer users to reveal their 
strategies and understand their decisions when encountering possibly suspi ... 

Keywords: mental models, phishing, qualitative methods 
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Peer-to-peer (p2p) technology can potentially be used to build highly reliable applications 
without a single point of failure. However, most of the existing applications, such as file 
sharing or web caching, have only moderate reliability demands. Without a challenging 
proving ground, it remains unclear whether the full potential of p2p systems can be 
realized.To provide such a proving ground, we have designed, deployed and operated a 
p2p-based email system. We chose email because users depend o ... 
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Virtually every Internet user on the planet uses the powerful free tools offered by a 
handful of information service providers in many aspects of their personal and 
professional lives. As a result, users and organizations are freely providing unprecedented 
amounts of sensitive information in return for such services as Internet search, email, 
mapping, blog hosting, instant messaging and language translation. Traditional security 
measures, such as cryptography and network firewalls, are largel ... 
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Full text available: Q pdf(532.13 KB) Additional Information: full citation , abstract , references , index terms 

Network infrastructures have evolved tremendously over the last years, offering new 
capabilities to the applications in higher levels. Email is a widely used communication tool 
that could benefit of an intelligent and active underlying"network in order to support 
sophisticated services. We explore in this paper an infrastructure based on intelligent 
mobile agents and active networks, and point out how and where advanced features can 
be introduced to our current passive email platform in order to ... 
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42 The Yaksha security system 
Ravi Ganesan 

March 1996 Communications of the ACM, volume 39 issue 3 
Publisher: ACM Press 

Additional Information: full citation , references , citing s, index terms . 
review 



Full text available: 



43 Inspiring teamwork & communication with a content management system 

# Daniel B. Delgado 
October 2007 Proceedings of the 35th annual ACM SIGUCCS conference on User 
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Full text available: ^ pdf (205.68 KB) Additional Information: full citation , abstract , references , index terms 

Content Management Systems (CMS) take may shapes and forms and most are familiar 
with them. CMSs include everything from portals to blogs and wikis. Many organizations 
use CMS as websites to collate and organize information in readily available chunks. 
However, in a lab environment CMSs can increase teamwork and communications as well 
as stopping the knowledge drain as student employees graduate. 
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Before attending SIGUCCS '05, I led the development of many new online systems for the 
CIR ... 
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The Internet is an almost ideal means for information retrieval and exchange. It is cost- 
effective, easy to use and easily accessible. However, it can also be susceptible to devious 
practices such as data tempering, eavesdropping and theft. This paper analyses secure 
virtual private networks &lpar;VPNs&rpar; and their use in countering the problems of the 
Internet. Copyright © 1999 John Wiley & Sons, Ltd. 
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The use of any modern computer system leaves unintended traces of expired data and 
remnants of users' past activities. In this paper, we investigate the unintended 
persistence of data stored in database systems. This data can be recovered by forensic 
analysis, and it poses a threat to privacy. 

First, we show how data remnants are preserved in database table storage, the 
transaction log, indexes, and other system components. Our evaluation of several real 
database systems reveals that d ... 
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In a proxy re-encryption (PRE) scheme, a proxy is given special information that allows it 
to translate a ciphertext under one key into a ciphertext of the same message under a 
different key. The proxy cannot, however, learn anything about the messages encrypted 
under either key. PRE schemes have many practical applications, including distributed 
storage, email, and DRM. Previously proposed re-encryption schemes achieved only 
semantic security; in contrast, applications often require security ... 

Keywords: chosen-ciphertext security, encryption, obfuscation, re-encryption 
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An organized record of actual flaws can be useful to computer system designers, 
programmers, analysts, administrators, and users. This survey provides a taxonomy for 
computer program security flaws, with an Appendix that documents 50 actual security 
flaws. These flaws have all been described previously in the open literature, but in widely 
separated places. For those new to the field of computer security, they provide a good 
introduction to the characteristics of security flaws and how they ... 

— Keywords: error/defect classification, security flaw, taxonomy 
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We describe the Pynchon Gate, a practical pseudonymous message retrieval system. Our 
design uses a simple distributed-trust private. information retrieval protocol to prevent 
adversaries from linking recipients to their pseudonyms, even when some of the 
infrastructure has been compromised. This approach resists global traffic analysis 
significantly better than existing deployed pseudonymous email solutions, at the cost of 
additional bandwidth. We examine security concerns raised by our model, and ... 

Keywords: anonymity, mix networks, private information retrieval 
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Automated email-based password reestablishment (EBPR) is an efficient, cost-effective 
means to deal with forgotten passwords. In this technique, email providers authenticate 
users on behalf of web sites. This method works because web sites trust email providers 
to deliver messages to their intended recipients. Simple Authentication for the Web (SAW) 
improves upon this basic approach to user authentication to create an alternative to 
password-based logins. SAW: 1) Removes the setup and ... 

Keywords: authentication, password alternative, web single sign-on 
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How does a machine know who is using it? Current systems authenticate their users 
infrequently, and assume the user's identity does not change. Such persistent 
authentication is inappropriate for mobile and ubiquitous systems, where associations 

between'people and'devices are fluid and unpredictable. We solve this problem with 

Transient Authentication, in which a small hardware token continuously authenticates the 
user's presence over a short-range, wireless link. We present the fo ... 
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Exchange of private information content among a large number of users via E-mail List 
Services is becoming increasingly common. In this paper we address security 
requirements in that setting and develop a new protocol, SELS (a Secure E-mail List 
Service) that provides confidentiality, integrity, and authentication for e-mails exchanged 
via lists. In addition, SELS also protects against the use of lists for e-mail spamming. We 
have developed a prototype of SELS in Java, and integrated it w ... 
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This paper addresses the identifier ownership problem. It does so by using characteristics 
of Statistical Uniqueness and Cryptographic Verifiability (SUCV) of certain entities which 
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this document calls SUCV Identifiers and Addresses, or, alternatively, Crypto-based 
Identifiers. Their characteristics allow them to severely limit certain classes of denial-of- 
service attacks and hijacking attacks. SUCV addresses are particularly applicable to solve 
the address ownership problem that hinders mechani ... 

Keywords: Security, address ownership, authorization, group management, mobile IPv6, 
opportunistic encryption 
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The Security Protocol Game is a highly visual and interactive game for teaching secure 
data communication protocols. Students use the game to simulate protocols and explore 
possible attacks against them. The power of the game lies in the representation of secret 
and public key cryptography. Specifically, the game provides representations for plain text 
and encrypted messages, message digests, digital signatures and cryptographic keys. 
Using these representations, students can construct public ke ... 

Keywords: PGP, blind signature, computer network, cryptography, digital signature, key 
exchange, man-in-the-middle attack, protocols, replay attack, secure communication 
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We describe the architecture and implementation of our Internet teleph ony test-bed 
intended to replace the departmental PBX (telephone switch). It interworks with the 
traditional telephone networks via a PSTN/IP gateway. It also serves as a corporate or 
campus infrastructure for existing and future services like web, email, video and 
streaming media. Initially intended for a few users, it will eventually replace the plain old 
telephones from our offices, due to the cost benefit and new ... 
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The analysis of the vast storehouse of email content accumulated or produced by 
individual users has received relatively little attention other than for specific tasks such as 
spam and virus filtering. Current email analysis in standard client applications consists of 
keyword based matching techniques for filtering and expert driven manual exploration of 
email files. 
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We have implemented a tool, called the Email Mining Toolkit (EMT) for analyzing email 
archives which includes a graphic ... 
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ID-based cryptosystems have many advantages over PKI based cryptosystems in key 
distribution, but they also have an inherent drawback of key escrow problem, i.e. users' 
private keys are known to the key generation center (KGC). Therefore secure key issuing 
(SKI) is an important issue in ID-based cryptography. In multiple authority approach 
(Boneh & Franklin 2001, Chen et al. 2002), key generation function is distributed to 
multiple authorities. Keeping key privacy using user-chosen secret inform ... 

Keywords: ID-based cryptography, bilinear pairing, blinding, key generation center 
(KGC), key privacy authority (KPA), secure key issuing (SKI) 
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Electronic commerce is inevitable and will reshape our lives, but before true electronic 
commerce environments can be realized, it will be necessary to secure your enterprise 
against outside attacks on its electronic information and provide controls for authorized 
access to that information. Copyright © 1999 John Wiley & Sons, Ltd. 
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A publish-subscribe overlay service is a wide-area communication infrastructure that 
enables information dissemination across geographically scattered and potentially 
unlimited number of publishers and subscribers. A wide-area publish-subscribe (pub-sub) 
system is often implemented as a collection of spatially disparate nodes communicating 
on top of a peer to peer overlay network. Such a model presents many inherent benefits 
such as scalability and performance, as well as potential challenges su ... 
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